$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653261393a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653261393a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: 8MFZYtVqO/iZRRq1W3a1rm43tg0drPTBEU4md3sdJlg= Subject key identifier: CE:A7:2C:CD:F1:A9:FF:D1:66:68:FB:A9:0A:A3:72:04:20:3E:01:92 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 0615FBE01815696A73C7957AB63D3418745F28AE Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653261393a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 05 Jun 2026 01:06:26 +0000 ROA not before: Fri 05 Jun 2026 01:01:26 +0000 ROA not after: Fri 04 Jun 2027 01:06:26 +0000 asID: 396968 IP address blocks: 2a0f:6287:e2a9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 20:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:15:fb:e0:18:15:69:6a:73:c7:95:7a:b6:3d:34:18:74:5f:28:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jun 5 01:01:26 2026 GMT Not After : Jun 4 01:06:26 2027 GMT Subject: CN=CEA72CCDF1A9FFD16668FBA90AA37204203E0192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:58:8e:06:a7:a5:17:15:cb:8b:4a:c3:3f: f4:45:d9:d5:ff:33:a4:0c:44:1f:50:2f:44:d0:13: 3a:44:23:6e:59:50:4f:28:61:fb:29:b6:d8:10:3e: 94:24:76:a8:0d:d1:b7:ab:b4:a4:df:0c:2a:ef:1f: 7a:9d:ef:8e:6f:fd:eb:5d:4d:c5:60:fa:b9:fc:f7: c1:4d:b9:2a:b4:8c:d6:a0:3c:d7:26:b0:33:15:ad: 34:d4:3c:b6:37:88:c0:15:c4:a0:b7:d9:c5:28:5e: ff:16:e6:00:49:f2:d9:ff:c8:92:01:e1:bc:7a:39: e6:86:ef:40:6a:33:20:53:e2:69:69:13:63:35:60: 7c:0f:bd:e5:5c:d4:6f:ef:bd:b9:56:f6:c4:b1:8a: a0:2e:d8:90:1a:a9:c7:6b:22:33:6b:c3:ec:65:d2: b0:a9:88:91:c5:82:2d:8d:f2:f5:d8:8b:00:f6:3d: 70:b5:60:3d:3b:e9:9c:68:91:91:81:fa:7a:49:9b: 01:0f:66:b5:1d:32:ab:c2:03:e0:31:0d:6f:4d:5b: af:06:d2:32:f1:d1:8a:9b:aa:9b:6b:cb:74:af:1b: db:b4:3d:9e:90:55:ad:41:5f:39:e9:28:56:73:0f: 2d:23:6c:5e:e1:dd:73:13:1f:39:d5:0e:ff:68:1e: 0c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A7:2C:CD:F1:A9:FF:D1:66:68:FB:A9:0A:A3:72:04:20:3E:01:92 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653261393a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e2a9::/48 Signature Algorithm: sha256WithRSAEncryption 00:93:87:0a:4d:f0:b3:3e:a6:31:47:25:bf:1a:c3:f3:5d:7d: 9e:34:3a:f8:ea:58:f5:ad:ad:29:64:de:e4:e2:f0:9b:fe:93: 02:d7:7f:97:0d:38:28:f6:65:bc:ea:ca:93:bb:ef:9d:d0:1b: 93:d8:47:9a:9c:2e:fb:d9:71:1e:dd:cc:c3:9e:94:cc:c2:91: e3:6b:49:9f:b1:de:88:93:92:53:35:23:7d:39:af:3e:a8:9a: 1c:c6:51:63:8a:3a:59:13:19:a3:43:3c:03:a6:70:d5:d7:e1: 50:22:87:75:e7:31:c2:45:27:8b:5e:d0:eb:23:39:08:0d:bf: a5:80:7f:ea:cd:f6:e9:24:95:01:0e:cb:35:5f:99:63:94:10: f6:d0:0a:7d:00:9c:01:a4:ed:48:21:3f:4e:84:d5:8b:d2:cc: 0b:36:b9:a7:6c:02:31:59:98:c0:a5:c2:e8:a1:22:51:f7:9d: b3:72:e5:f0:1c:06:9d:1d:98:e8:9c:84:c6:c2:a5:98:6b:db: a8:99:5c:fd:c6:a7:2e:af:3b:42:7b:0c:ab:a3:8e:aa:ca:ab: 2f:55:4a:83:44:c0:06:f9:eb:12:f7:a5:9d:0f:18:18:f0:2d: 3d:d2:ec:6e:15:c9:48:21:e2:b8:ab:28:ab:2d:a4:1e:4a:52: c0:03:4f:f5 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUBhX74BgVaWpzx5V6tj00GHRfKK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNjA2MDUwMTAxMjZaFw0yNzA2MDQwMTA2MjZaMDMxMTAvBgNV BAMTKENFQTcyQ0NERjFBOUZGRDE2NjY4RkJBOTBBQTM3MjA0MjAzRTAxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC70ViOBqelFxXLi0rDP/RF2dX/ M6QMRB9QL0TQEzpEI25ZUE8oYfspttgQPpQkdqgN0bertKTfDCrvH3qd745v/etd TcVg+rn898FNuSq0jNagPNcmsDMVrTTUPLY3iMAVxKC32cUoXv8W5gBJ8tn/yJIB 4bx6OeaG70BqMyBT4mlpE2M1YHwPveVc1G/vvblW9sSxiqAu2JAaqcdrIjNrw+xl 0rCpiJHFgi2N8vXYiwD2PXC1YD076ZxokZGB+npJmwEPZrUdMqvCA+AxDW9NW68G 0jLx0Yqbqptry3SvG9u0PZ6QVa1BXznpKFZzDy0jbF7h3XMTHznVDv9oHgw7AgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUzqcszfGp/9FmaPupCqNyBCA+AZIwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzI2MTM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+Kp MA0GCSqGSIb3DQEBCwUAA4IBAQAAk4cKTfCzPqYxRyW/GsPzXX2eNDr46lj1ra0p ZN7k4vCb/pMC13+XDTgo9mW86sqTu++d0BuT2EeanC772XEe3czDnpTMwpHja0mf sd6Ik5JTNSN9Oa8+qJocxlFjijpZExmjQzwDpnDV1+FQIod15zHCRSeLXtDrIzkI Db+lgH/qzfbpJJUBDss1X5ljlBD20Ap9AJwBpO1IIT9OhNWL0swLNrmnbAIxWZjA pcLooSJR952zcuXwHAadHZjonITGwqWYa9uomVz9xqcurztCewyro46qyqsvVUqD RMAG+esS96WdDxgY8C090uxuFclIIeK4qyirLaQeSlLAA0/1 -----END CERTIFICATE-----Generated at Sat Jun 6 08:24:20 2026 by rpki-client